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41 Cluster resource management: An integrated experimental environment for distributed Q 
systems and networks 

Brian White, Jay Lepreau, Leigh Stoller, Robert Ricci, Shashi Guruprasad, Mac Newbold, Mike 
Hibler, Chad Barb, Abhijeet Joglekar 

December 2002 ACM SIGOPS Operating Systems Review, volume 36 issue si 
Full text available: < g) pdf(2.10 MB) Additional Information: full citation , abstract , references 

Three experimental environments traditionally support network and distributed systems 
research: network emulators, network simulators, and live networks. The continued use of 
multiple approaches highlights both the value and inadequacy of each. Netbed, a 
descendant of Emulab, provides an experimentation facility that integrates these 
approaches, allowing researchers to configure and access networks composed of emulated, 
simulated, and wide-area nodes and links. Netbed's primary goals are ease ... 

42 Notable computer networks H 
John S. Quarterman, Josiah C. Hoskins 

October 1986 Communications of the ACM, volume 29 issue 10 

Full text available- 1S S)pdff4.66 MB) Additional Information: full citation , abstract, references , citings, index 

terms , review 

Computer networks are becoming more numerous and more diverse. Collectively, they 
constitute a worldwide metanetwork. 



43 Is hierarchical public-key certification the next target for hackers? 
Mike Burmester, Yvo G. Desmedt 

August 2004 Communications of the ACM, volume 47 issue 8 
Full text available: 1f )pdf(173.38 KB) 



html(27.53 KB) 



Additional Information: full citation , abstract , references , index terms 



Considering alternatives to hierarchical authentication structures that are not sufficiently 
secure for communication on open networks such as the Internet. 

44 Systems 1 : A wireless sensor network For structural monitoring 

Ning Xu, Sumit Rangwala, Krishna Kant Chintalapudi, Deepak Ganesan, Alan Broad, Ramesh 
Govindan, Deborah Estrin 

November 2004 Proceedings of the 2nd international conference on Embedded 
networked sensor systems 
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Full text available: ^ pdf(731.28 KB) Additional Information: full citation , abstract , references , index terms 

Structural monitoring— the collection and analysis of structural response to ambient or 
forced excitation— is an important application of networked embedded sensing with 
significant commercial potential. The first generation of sensor networks for structural 
monitoring are likely to be data acquisition systems that collect data at a single node for 
centralized processing. In this paper, we discuss the design and evaluation of a wireless 
sensor network system (called Wisden for structural dat ... 

Keywords: Wisden, sensor network, structural health monitoring 



45 Trust management for IPsec | 
May 2002 ACM Transactions on Information and System Security (TISSEC), volume 5 

Issue 2 

Full text available' fjfl p df(321 98 KB) Additional Information: full citation , abstract , references , citings, index 
' k^P^--* ■ terms , review 

IPsec is the standard suite of protocols for network-layer confidentiality and authentication 
of Internet traffic. The IPsec protocols, however, do not address the policies for how 
protected traffic should be handled at security end points. This article introduces an efficient 
policy management scheme for IPsec, based on the principles of trust management. A 
compliance check is added to the IPsec architecture that tests packet filters proposed when 
new security associations are created for confo ... 

Keywords: Credentials, IPsec, KeyNote, network security, policy, trust management 



46 Internet indirection infrastructure 

Ion Stoica, Daniel Adkins, Shelley Zhuang, Scott Shenker, Sonesh Surana 
August 2002 ACM SIGCOMM Computer Communication Review , Proceedings of the 
2002 conference on Applications, technologies, architectures, and 
protocols for computer communications, volume 32 issue 4 

Additional Information: full citation , abstract , references , citings , index 



Full text available: ' , , ^ 

terms 

Attempts to generalize the Internet's point-to-point communication abstraction to provide 
services like multicast, anycast, and mobility have faced challenging technical problems and 
deployment barriers. To ease the deployment of such services, this paper proposes an 
overlay-based Internet Indirection Infrastructure ( 13) that offers a rendezvous-based 
communication abstraction. Instead of explicitly sending a packet to a destination, each 
packet is associated with an identifier; this identifier ... 

Keywords: abstraction, architecture, indirection, internet, scalable 



47 Interoperability of multiple autonomous databases 
Witold Litwin, Leo Mark, Nick Roussopoulos 

September 1990 ACM Computing Surveys (CSUR), Volume 22 Issue 3 

Full text available* ffi l pdf(2.66 MB) Additional Information: full citation, abstract, references, citings, index 
^ terms , review 

Database systems were a solution to the problem of shared access to heterogeneous files 
created by multiple autonomous applications in a centralized environment. To make data 
usage easier, the files were replaced by a globally integrated database. To a large extent, 
the idea was successful, and many databases are now accessible through local and long- 
haul networks. Unavoidably, users now need shared access to multiple autonomous 
databases. The question is what the corresponding methodology ... 
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48 Approximation of protein structure for fast similarity measures 
Fabian Schwarzer, Itay Lotan 

April 2003 Proceedings of the seventh annual international conference on 
Computational molecular biology 

Full text available: *g | pdf(212.43 KB) Additional Information: full citation , abstract , references , index terms 

It is shown that structural similarity between proteins can be decided well with much less 
information than what is used in common similarity measures. The full Ca representation 
contains redundant information because of the inherent chain topology of proteins and a 
limit on their compactness due to excluded volume. A wavelet analysis on random chains 
and proteins justifies approximating subchains by their centers of mass. For not too 
compact chain-like structures in general, and ... 

Keywords: approximation of structure, nearest-neighbor search, protein structure, 
similarity measures 




49 An overview of the Andrew message system 
J. Rosenberg, C. F. Everhart, N. S. Borenstein 

August 1987 ACM SIGCOMM Computer Communication Review , Proceedings of the 
ACM workshop on Frontiers in computer communications technology, 

Volume 17 Issue 5 

Full text available: *^ [pdf(1.16 MB) Additional Information: full citation , references , citings , index terms 



50 SIMP instruction cache B 
Todd E. Rockoff 

August 1994 Proceedings of the sixth annual ACM symposium on Parallel algorithms 
and architectures 

Full text available: ^pdf(1.06 MB) Additional Information: full citation , abstract , references , index terms 

SIMD instruction cache (or I-cache) is proposed to remedy a heretofore un-compensated 
instruction delivery rate limitation of SIMD computers. This paper introduces the concept of 
SIMD I-cache and sketches the I-cache design space. On the basis of throughput using chip 
area as a hardware cost constraint, detailed evaluations of simple I-cache variants for a 
diverse set of sample problems are presented. Simple I-cache variants occupy negligible 
area in chips while providing significant speedu ... 

51 The structure of Cedar H 
Daniel C. Swinehart, PolleT. Zellweger, Robert B. Hagmann 

June 1985 Proceedings of the ACM SIGPLAN 85 symposium on Language issues in 

programming environments, volume 20 , is issue 7 , 6 
Full text available- W P df(1.79 MB) Additional Information: full citation , abstract, references , citings, index 
^ terms 

This paper presents an overview of the Cedar programming environment, focusing primarily 
on its overall structure: the major components of Cedar and the way they are organized. 
Cedar supports the development of programs written in a single programming language, 
also called Cedar. We will emphasize the extent to which the Cedar language, with runtime 
support, has influenced the organization, comprehensibility, and stability of Cedar. 
Produced in the Computer Science Laboratory (CS ... 

52 Issues in implementing a real time embedded Data Base Management System in Ada Q 
David Bunting, Leonard Bass 

March 1986 Proceedings of the third annual Washington Ada symposium on Ada: Ada 
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use in focus : practical lessons in perspective 

Full text available: ^ pdf(901.52 KB) Additional Information: full citation , references 



53 Cooperation in MAS: Discovering and exploiting synergy between hierarchical planning | J 
agents 

Jeffrey S. Cox, Edmund H. Durfee 

July 2003 Proceedings of the second international joint conference on Autonomous 
agents and multiagent systems 

Full text available: ^) pdf(249.79 KB) Additional Information: full citation , abstract , references , index terms 

It is critical for agents in a multiagent environment to avoid interfering with each other 
when carrying out their tasks. However, to avoid execution inefficiencies, they also should 
capitalize on cooperative opportunities. In state oriented domains [14], identifying 
overlapping effects between agents' plans enables some agents to leave some tasks to 
others, thereby reducing the cost of execution and improving the overall efficiency of the 
multiagent system. This is what we term synergy. ... 

Keywords: coordination of multiple agents, multiagent planning, plan merging, synergy 
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21 Storage: Multi-dimensional range queries in sensor networks 
Xin Li, Young Jin Kim, Ramesh Govindan, Wei Hong 

November 2003 Proceedings of the 1st international conference on Embedded 
networked sensor systems 

Additional Information: full citation , abstract , references , citings , index 
terms 



Full text available: f| | pdf(331.43 KB) 



In many sensor networks, data or events are named by attributes. Many of these attributes 
have scalar values, so one natural way to query events of interest is to use a multi- 
dimensional range query. An example is: "List all events whose temperature lies between 
50° and 60°, and whose light levels lie between 10 and 15." Such queries are useful for 
correlating events occurring within the network. In this paper, we describe the design of a 
distributed index that scalably supports ... 



Keywords: DIM, multi-dimensional range queries 



22 The geometric maximum traveling salesman problem H 
Alexander Barvinok, Sandor P. Fekete, David S. Johnson, ArieTamir, Gerhard J. Woeginger, 
Russ Woodroofe 

September 2003 Journal of the ACM (JACM), volume 50 issue 5 

Full text available: Qpdf(263.20 KB) Additional Information: full citation , abstract , references , index terms 

We consider the traveling salesman problem when the cities are points in &&num;x211D; d 
for some fixed d and distances are computed according to geometric distances, determined 
by some norm. We show that for any polyhedral norm, the problem of finding a tour of 
maximum length can be solved in polynomial time. If arithmetic operations are assumed to 
take unit time, our algorithms run in time 0(n f ~ 2 log /?), where f ... 

Keywords: Euclidean metric, NP-hardness, Traveling salesman problem, maximum scatter 
TSP, optimization, polyhedral metric, polynomial time 



23 Survey articles: Data mining for hypertext: a tutorial survey 
Soumen Chakrabarti 

January 2000 ACM SIGKDD Explorations Newsletter, Volume l issue 2 

Full text available: Wi pdf(1.19 MB) Additional Information: full citation , abstract , references , citings 
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With over 800 million pages covering most areas of human endeavor, the World-wide Web 
is a fertile ground for data mining research to make a difference to the effectiveness of 
information search. Today, Web surfers access the Web through two dominant interfaces: 
clicking on hyperlinks and searching via keyword queries. This process is often tentative 
and unsatisfactory. Better support is needed for expressing one's information need and 
dealing with a search result in more structured ways than av ... 

24 Rendering vector data over global multi-resolution 3D terrain 

Zachary Wartell, Eunjung Kang, Tony Wasilewski, William Ribarsky, Nickolas Faust 
May 2003 Proceedings of the symposium on Data visualisation 2003 

Full text available: ^ pdf(2.51 MB) Additional Information: full citation , abstract , index terms 

Modern desktop PCs are capable of taking 2D Geographic Information System (GIS) 
applications into the realm of interactive 3D virtual worlds. In prior work we developed and 
presented graphics algorithms and data management methods for interactive viewing of a 
3D global terrain system for desktop and virtual reality systems. In this paper we present a 
key data structure and associated render-time algorithm for the combined display of multi- 
resolution 3D terrain and traditional GIS polyline vector ... 

25 XML manipulations: Lazy XML processing 
Markus L. Noga, Steffen Schott, Welf Lowe 

November 2002 Proceedings of the 2002 ACM symposium on Document engineering 

Full text available- f?lpdfM97.96 KB) Addltlonal lnformation: Mcitation, abstract, references , citings, index 
v^—* terms 

This paper formalizes the domain of tree-based XML processing and classifies several 
implementation approaches. The lazy approach, an original contribution, is presented in 
depth. Proceeding from experimental measurements, we derive a selection strategy for 
implementation approaches to maximize performance. 

Keywords: XML, document object model, lazy evaluation, parsing 

26 Launching the new era 

Kazuhiro Fuchi, Robert Kowalski, Koichi Furukawa, Kazunori Ueda, Ken Kahn, Takashi 
Chikayama, Evan Tick 

March 1993 Communications of the ACM, volume 36 issue 3 

Full text available: W[ pdf(3.45 MB) Additional Information: full citation , references , index terms , review 



27 Protecting information on the Web H 
Elisa Bertino, Elena Pagani, Gian Paolo Rossi, Pierangela Samarati 
November 2000 Communications of the ACM 

Full text available: pdf(461.10 KB) Additional Information: full citation , references , citings , index terms 



28 Enterprise Role Administration: The role control center: features and case studies B 
David F. Ferraiolo, R. Chandramouli, Gail-Joon Ahn, Serban I. Gavrila 
June 2003 Proceedings of the eighth ACM symposium on Access control models and 
technologies 

Additional Information: full citation , abstract , references , citings , index 



Full text available: W j pdf(779.58 KB) 

LlJ "^ terms 



Role-based Access Control (RBAC) models have been implemented not only in self- 
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contained resource management products such as DBMSs and Operating Systems but also 
in a class of products called Enterprise Security Management Systems (ESMS). ESMS 
products are used for centralized management of authorizations for resources resident in 
several heterogeneous systems (called target systems) distributed throughout the 
enterprise. The RBAC model used in an ESMS is called the Enterprise RBAC model 
(ERBAC ... 

Keywords: administrative roles, authorization management, role graph, role hierarchy, 
separation of duty 



29 Proposed NIST standard for role-based access control Q 
David F. Ferraiolo, Ravi Sandhu, Serban Gavrila, D. Richard Kuhn, Ramaswamy Chandramouli 
August 2001 ACM Transactions on Information and System Security (TISSEC), volume 4 

Issue 3 

Full text available: f fl pdf(417.90 KB) Additional Information: full citation, abstract, references, citings, index 
^ terms 

In this article we propose a standard for role-based access control (RBAC). Although RBAC 
models have received broad support as a generalized approach to access control, and are 
well recognized for their many advantages in performing large-scale authorization 
management, no single authoritative definition of RBAC exists today. This lack of a widely 
accepted model results in uncertainty and confusion about RBAC's utility and meaning. The 
standard proposed here seeks to resolve this situation by u ... 

Keywords: Role-based access control, access control, authorization management, security, 
standards 



30 A structural view of the Cedar programming environment H 
Daniel C. Swinehart, PolleT. Zellweger, Richard J. Beach, Robert B. Hagmann 
August 1986 ACM Transactions on Programming Languages and Systems (TOPLAS), 

Volume 8 Issue 4 



Full text available: f | pdf(6.32 MB) 



Additional Information: full citation , abstract , references , citings , index 
terms 



This paper presents an overview of the Cedar programming environment, focusing on its 
overall structure— that is, the major components of Cedar and the way they are organized. 
Cedar supports the development of programs written in a single programming language, 
also called Cedar. Its primary purpose is to increase the productivity of programmers whose 
activities include experimental programming and the development of prototype software 
systems for a high-performance personal computer. T ... 

31 Replication for web hosting systems 

Swaminathan Sivasubramanian, Michal Szymaniak, Guillaume Pierre, Maarten van Steen 
September 2004 ACM Computing Surveys (CSUR), volume 36 issue 3 

Full text available: |j| pdf(374.99 KB) Additional Information: full citation , abstract , references , index terms 

Replication is a well-known technique to improve the accessibility of Web sites. It generally 
offers reduced client latencies and increases a site's availability. However, applying 
replication techniques is not trivial, and various Content Delivery Networks (CDNs) have 
been created to facilitate replication for digital content providers. The success of these 
CDNs has triggered further research efforts into developing advanced <i>Web replica 
hosting systems</i>. These are systems that ... 

Keywords: Web replication, content delivery networks 
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32 Storage: An evaluation of multi-resolution storage for sensor networks 

Deepak Ganesan, Ben Greenstein, Denis Perelyubskiy, Deborah Estrin, John Heidemann 
November 2003 Proceedings of the 1st international conference on Embedded 
networked sensor systems 

Full text available: ^ pdf(299.34 KB) Additional Information: full citation , abstract , references , citings 

Wireless sensor networks enable dense sensing of the environment, offering unprecedented 
opportunities for observing the physical world. Centralized data collection and analysis 
adversely impact sensor node lifetime. Previous sensor network research has, therefore, 
focused on in network aggregation and query processing, but has done so for applications 
where the features of interest are known a priori. When features are not known a priori, as 
is the case with many scientific applications in dens ... 




33 Session 2: mathematical algorithms: Control strategies for parallel mixed integer Q 

branch and bound 
Jonathan Eckstein 

November 1994 Proceedings of the 1994 ACM/IEEE conference on Supercomputing 

Full text available: ^ pdf(1.05 MB) Additional Information: full citation , abstract , references 

Mixed integer programs are numerical optimization problems that arise frequently in 
operations research, particularly in industrial logistics and tactical planning. Their classical 
solution method is a tree-search branch and bound algorithm in which each tree node 
represents a linear program. This paper describes an implementation of general mixed 
integer branch and bound that runs on the CMS family of parallel processors. This code 
allows varying amounts of centralization, and combines the rand ... 

34 Special issue on computational phonology: Phonological analysis in typed feature Q 
systems 

Steven Bird, Ewan Klein 

September 1994 Computational Linguistics, volume 20 issue 3 



Full text available: ^ ,r/«4«Mm 

^pdf^.lQMB) 1 ^ Additional Information: full citation , abstract , references , citings 

Publisher Site 

Research on constraint-based grammar frameworks has focused on syntax and semantics 
largely to the exclusion of phonology. Likewise, current developments in phonology have 
generally ignored the technical and linguistic innovations available in these frameworks. In 
this paper we suggest some strategies for reuniting phonology and the rest of grammar in 
the context of a uniform constraint formalism. We explain why this is a desirable goal, and 
we present some conservative extensions to current pra ... 

35 Managing multiple and distributed ontologies on the Semantic Web Q 
A. Maedche, B. Motik, L. Stojanovic 

November 2003 The VLDB Journal — The International Journal on Very Large Data 

Bases, Volume 12 Issue 4 
Full text available: ^ pdf(375.18 KB) Additional Information: full citation , abstract , citings , index terms 

In traditional software systems, significant attention is devoted to keeping modules well 
separated and coherent with respect to functionality, thus ensuring that changes in the 
system are localized to a handful of modules. Reuse is seen as the key method in reaching 
that goal. Ontology-based systems on the Semantic Web are just a special class of software 
systems, so the same principles apply. In this article, we present an integrated framework 
for managing multiple and distributed ontologies o ... 

Keywords: Multiple and distributed ontologies, Ontology evolution 
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36 Integrated learning for interactive synthetic characters 

Bruce Blumberg, Marc Downie, Yuri Ivanov, Matt Berlin, Michael Patrick Johnson, Bill 
Tomlinson 

July 2002 ACM Transactions on Graphics (TOG) , Proceedings of the 29th annual 

conference on Computer graphics and interactive techniques, volume 21 issue 3 

Full text available: f | pdf(488.66 KB) Addjtional Information: full citation , abstract, references , cjtinfls, index 

terms 

The ability to learn is a potentially compelling and important quality for interactive synthetic 
characters. To that end, we describe a practical approach to real-time learning for synthetic 
characters. Our implementation is grounded in the techniques of reinforcement learning and 
informed by insights from animal training. It simplifies the learning task for characters by 
(a) enabling them to take advantage of predictable regularities in their world, (b) allowing 
them to make maximal use of any ... 

Keywords: animation, behavioral animation, computer games 



37 Message addressing schemes 
D. Tsichritzis 

January 1984 ACM Transactions on Information Systems (TOIS), Volume 2 issue 1 
Full text available: ^pdfd.40 MB) Additional Information: full citation , references , citings , index terms 



38 Multiview access protocols for large-scale replication 
Xiangning Liu, Abdelsalam Helal, Weimin Du 

June 1998 ACM Transactions on Database Systems (TODS), volume 23 issue 2 

Full text available: ^pdf(365.98 KB) Additional Information: full citation , abstract, references , citings, index 
1^**—* - terms , review 

The article proposes a scalable protocol for replication management in large-scale replicated 
systems. The protocol organizes sites and data replicas into a tree-structured, hierarchical 
cluster architecture. The basic idea of the protocol is to accomplish the complex task of 
updating replicated data with a very large number of replicas by a set of related but 
independently committed transactions. Each transaction is responsible for updating replicas 
in exactly one cluster and invoking add ... 

Keywords: data replication, large-scale systems, multiview access 



39 Delegation logic: A logic-based approach to distributed authorization 
Ninghui Li, Benjamin N. Grosof, Joan Feigenbaum 

February 2003 ACM Transactions on Information and System Security (TISSEC), volume 6 
Issue 1 

Full text available' *p ipdf(316 24 KB) Additiona l Information: full citation , abstract , references , citings , index 

: terms 

We address the problem of authorization in large-scale, open, distributed systems. 
Authorization decisions are needed in electronic commerce, mobile-code execution, remote 
resource sharing, privacy protection, and many other applications. We adopt the trust- 
management approach, in which "authorization" is viewed as a "proof-of-compliance" 
problem: Does a set of credentials prove that a request complies with a policy?We develop 
a logic-based language, called Delegation Logic (DL), t ... 

Keywords: Access control, Delegation Logic, distributed system security, logic programs, 
trust management 
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40 Pen computing: a technology overview and a vision 
Andr6 Meyer 

July 1995 ACM SIGCHI Bulletin, Volume 27 Issue 3 

Full text available: pdf(5.14 MB) Additional Information: full citation , abstract , ci tings , index terms 




This work gives an overview of a new technology that is attracting growing interest in public 
as well as in the computer industry itself. The visible difference from other technologies is in 
the use of a pen or pencil as the primary means of interaction between a user and a 
machine, picking up the familiar pen and paper interface metaphor. From this follows a set 
of consequences that will be analyzed and put into context with other emerging 
technologies and visions. Starting with a short historic ... 
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1 Heuristics, Experimental Subjects, and Treatment Evaluation in Bigraph Crossing 
Minimization 

Matthias Stallmann, Franc Brglez, Debabrata Ghosh 

January 2001 Journal of Experimental Algorithmics (JEA), volume 6 

Full text available: || pdf(858.74 KB) 
\m ps(3.01 MB) 



Additional Information: full citation , abstract , references , index terms 



The bigraph crossing problem, embedding the two node sets of a bipartite graph along two 
parallel lines so that edge crossings are minimized, has applications to circuit layout and 
graph drawing. Experimental results for several previously known and two new heuristics 
suggest continued exploration of the problem, particularly sparse instances. We emphasize 
careful design of experimental subject classes and present novel views of the results. All 
source code, data, and scripts are available on-li ... 

Keywords: crossing number, design of experiments, graph drawing, graph embedding, 
graph equivalence classes, layout 



2 Fast detection of communication patterns in distributed executions 
Thomas Kunz, Michiel F. H. Seuren 

November 1997 Proceedings of the 1997 conference of the Centre for Advanced Studies 
on Collaborative research 

Full text available: *g^ pdf(4.21 MB) Additional Information: full citation , abstract , references , index terms 

Understanding distributed applications is a tedious and difficult task. Visualizations based on 
process-time diagrams are often used to obtain a better understanding of the execution of 
the application. The visualization tool we use is Poet, an event tracer developed at the 
University of Waterloo. However, these diagrams are often very complex and do not provide 
the user with the desired overview of the application. In our experience, such tools display 
repeated occurrences of non-trivial commun ... 

3 Tree-based group key agreement 
Yongdae Kim, Adrian Perrig, Gene Tsudik 

February 2004 ACM Transactions on Information and System Security (TISSEC), Volume i 

Issue 1 



Full text available: H pdff 573.70 KB) 
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Secure and reliable group communication is an active area of research. Its popularity is 
fueled by the growing importance of group-oriented and collaborative applications. The 
central research challenge is secure and efficient group key management. While centralized 
methods are often appropriate for key distribution in large multicast-style groups, many 
collaborative group settings require distributed key agreement techniques. This work 
investigates a novel group key agreement approach which ble ... 

Keywords: communication complexity, cryptographic protocols, group communication, 
group key agreement, security 



4 Simplified kinetic connectivity for rectangles and hypercubes 
John Hershberger, Subhash Suri 

January 2001 Proceedings of the twelfth annual ACM-SIAM symposium on Discrete 
algorithms 

Additional Information: full citation , abstract , references , citings , index 



Full text available: 1 
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We consider the problem of maintaining connected components in a set of moving objects 
using the kinetic data structure (KDS) framework. We assume that the motion of each 
object can be specified by a low-degree algebraic trajectory; this trajectory, however, can 
be modified in an on-line fashion. While the objects move continuously, their connectivity 
changes at discrete times. A straightforward dynamic graph approach for maintaining 
connectivity of n objects has three shortcomings: th ... 

5 Security in VANET: Efficient attribute authentication with applications to ad hoc 
networks 

Markus Jakobsson, Susanne Wetzel 

October 2004 Proceedings of the first ACM workshop on Vehicular ad hoc networks 

Full text available: pdf(194.82 KB) Additional Information: full citation , abstract , references , index terms 

We present a family of certification methods with applications to attribute certification, 
which in turn has ample applications to ad hoc networks by way of the use of centrally 
managed recommendation mechanisms. Our construction is based on a Merkle tree 
consisting of subtrees, each of which corresponds to some aspect of an attribute. We study 
how the ordering of these subtrees can impact the cost of representing, maintaining, and 
verifying attribute certificates. We describe the applicability ... 

Keywords: attribute authority, certificate, cryptography, hash graphs, light-weight, 
recommendation, spatial Merkle tree 



Data clustering: a review 

A. K. Jain, M. N. Murty, P. J. Flynn 

September 1999 ACM Computing Surveys (CSUR), volume 31 issue 3 

Additional Information: full citation , abstract , references , citings , index 



Full text available: \. vl r ™ ^ 
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Clustering is the unsupervised classification of patterns (observations, data items, or 
feature vectors) into groups (clusters). The clustering problem has been addressed in many 
contexts and by researchers in many disciplines; this reflects its broad appeal and 
usefulness as one of the steps in exploratory data analysis. However, clustering is a difficult 
problem combinatorially, and differences in assumptions and contexts in different 
communities has made the transfer of useful generic co ... 

Keywords: cluster analysis, clustering applications, exploratory data analysis, incremental 
clustering, similarity indices, unsupervised learning 
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7 Special Section on Science of Network Design: On the scaling of congestion in the 
internet graph 

Aditya Akella, Shuchi Chawla, Arvind Kannan, Srinivasan Seshan 

July 2004 ACM SIGCOMM Computer Communication Review, volume 34 issue 3 

Full text available: ^ pdf(671.18 KB) Additional Information: full citation , abstract , references , index terms 

As the Internet grows in size, it becomes crucial to understand how the speeds of links in 
the network must improve in order to sustain the pressure of new end-nodes being added 
each day. Although the speeds of links in the core and at the edges improve roughly 
according to Moore's law, this improvement alone might not be enough. Indeed, the 
structure of the Internet graph and routing in the network might necessitate much faster 
improvements in the speeds of key links in the network. 

I ... 

Keywords: congestion, power-law graphs, shortest path routing 
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Distributed operating systems have many aspects in common with centralized ones, but 
they also differ in certain ways. This paper is intended as an introduction to distributed 
operating systems, and especially to current university research about them. After a 
discussion of what constitutes a distributed operating system and how it is distinguished 
from a computer network, various key design issues are discussed. Then several examples 
of current research projects are examined in some detail ... 

A parallel shortest augmenting path algorithm for the assignment problem 
Egon Balas, Donald Miller, Joseph Pekny, Paolo Toth 
October 1991 Journal of the ACM (JACM), Volume 38 issue 4 
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Full text available- fj W(3.25 MB) Additional Information: full citation , abstract, references , citings, index 
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When people have meetings or discussions, frequently they use conversational props: 
physical models, drawings, or other concrete representations of information used to 
enhance the exchange of information. If the participants are geographically separated, it is 
difficult to make effective use of props since each physical prop can only exist in one place. 
Computer applications that allow two or more users to simultaneously view and manipulate 
the same data can be used to augm ... 
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11 Authentication: An approach to certificate path discovery in mobile Ad Hoc networks 
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October 2003 Proceedings of the 1st ACM workshop on Security of ad hoc and sensor 
networks 

Full text available- ffl pdf(146 93 KB) Additional Information: full citation , abstract , references , citings, index 
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Public key certificates prove validity and authenticity of their ownership and possibly other 
properties. Certificate path discovery is the critical process for public key verification in 
hierarchical public key infrastructure (PKI) diagrams. This process is conventionally done in 
centralized public key management system such as central CA or directory. However, in an 
infrastructure-less environment, such as a mobile ad hoc network, no such central service is- 
present due to network dynamics. Tha ... 

Keywords: MANET, certificate path discovery, public key infrastructure, security 
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The bulk of proposed. pervasive computing devices such as PDAs and cellular telephones 
operate as thin clients within a larger infrastructure. To access services within their local 
environment, these devices participate in a service discovery protocol which involves a 
master directory that registers all services available in the local environment. These 
directories typically are isolated from each other. Devices that move across service 
discovery domains have no access to information outside t ... 

13 Aggregation: Medians and beyond: new aggregation techniques for sensor networks 
Nisheeth Shrivastava, Chiranjeeb Buragohain, Divyakant Agrawal, Subhash Suri 
November 2004 Proceedings of the 2nd international conference on Embedded 
networked sensor systems 

Full text available: "| | pdf(287.99 KB) Additional Information: full citation , abstract , references , index terms 

Wireless sensor networks offer the potential to span and monitor large geographical areas 
inexpensively. Sensors, however, have significant power constraint (battery life), making 
communication very expensive. Another important issue in the context of sensor-based 
information systems is that individual sensor readings are inherently unreliable. In order to 
address these two aspects, sensor database systems like TinyDB and Cougar enable in- 
network data aggregation to reduce the communication c ... 

Keywords: aggregation, approximation algorithms, distributed algorithms, sensor 
networks 
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The next generation personal communication network will likely internetwork wireless 
networks via the ATM/B-ISDN to enable ubiquitous broadband personal communication 
services. Support of user terminal mobility, particularly the capability for fast and seamless 
handoffs, over the ATM/B-ISDN is an expected requirement that is not currently met. We 
propose extensions to the ATM/B-ISDN user transport and signaling network architectures 
and signaling protocols to meet these requirements. The ne ... 
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June 2003 Proceedings of the thirty-fifth annual ACM symposium on Theory of 
computing 
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We introduce a simple network design game that models how independent selfish agents 
can build or maintain a large network. In our game every agent has a specific connectivity 
requirement, i.e. each agent has a set of terminals and wants to build a network in which 
his terminals are connected. Possible edges in the network have costs and each agent's 
goal is to pay as little as possible. Determining whether or not a Nash equilibrium exists in 
this game is NP-complete. However, when the goal of e ... 

Keywords: network design, price of anarchy 
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Robbert Van Renesse, Kenneth P. Birman, Werner Vogels 

May 2003 ACM Transactions on Computer Systems (TOCS), volume 21 issue 2 

Full text available- f^ l pdf(341 62 KB) Additional Information: full citation , abstract , references, citings, index 
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Scalable management and self-organizational capabilities are emerging as central 
requirements for a generation of large-scale, highly dynamic, distributed applications. We 
have developed an entirely new distributed information management system called 
Astrolabe. Astrolabe collects large-scale system state, permitting rapid updates and 
providing on-the-fly attribute aggregation. This latter capability permits an application to 
locate a resource, and also offers a scalable way to track sys ... 

Keywords: Aggregation, epidemic protocols, failure detection, gossip, membership, 
publish-subscribe, scalability 
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Active database systems support mechanisms that enable them to respond automatically to 
events that are taking place either inside or outside the database system itself. 
Considerable effort has been directed towards improving understanding of such systems in 
recent years, and many different proposals have been made and applications suggested. 
This high level of activity has not yielded a single agreed-upon standard approach to the 
integration of active functionality with conventional databa ... 

Keywords: active databases, events, object-oriented databases, relational databases 
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This paper presents Sharp, a framework for secure distributed resource management in an 
Internet-scale computing infrastructure. The cornerstone of Sharp is a construct to 
represent cryptographically protected resource <it>claims</it>— promises or rights to 
control resources for designated time intervals— together with secure mechanisms to 
subdivide and delegate claims across a network of resource managers. These mechanisms 
enable flexible <it> resource peeri ... 

Keywords: peer-to-peer, resource allocation, resource peering 



20 An access control framework for multi-user collaborative environments 
Adrian Bullock, Steve Benford 

November 1999 Proceedings of the international ACM SIGGROUP conference on 
Supporting group work 
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A vital component of any application or environment is security, and yet this is often one of 
the lower priorities, losing out to performance and functionality issues, if it is considered at 
all. This paper considers a spatial approach to enabling, understanding and managing 
access control that is generally applicable across a range of collaborative environments and 
applications. Access control is governed according to the space within which subjects and 
objects reside, and the ability to t ... 
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1 Heuristics. Experimental Subjects, and Treatment Evaluation in Biqraph Crossing Q 
Minimization 

Matthias Stallmann, Franc Brglez, Debabrata Ghosh 

January 2001 Journal of Experimental Algorithmics (JEA) volume 6 

Full text available: 1 pdf(858.74 KB) |nformatjon: fu |, citation . abst ract . references , index terms 

Sff PS(j.U1 MB) 

The bigraph crossing problem, embedding the two node sets of a bipartite graph along two 
parallel lines so that edge crossings are minimized, has applications to circuit layout and 
graph drawing. Experimental results for several previously known and two new heuristics 
suggest continued exploration of the problem, particularly sparse instances. We emphasize 
careful design of experimental subject classes and present novel views of the results. All 
source code, data, and scripts are available on-li ... 

Keywords: crossing number, design of experiments, graph drawing, graph embedding, 
graph equivalence classes, layout 



2 Fast detection of communication patterns in distributed executions Q 
Thomas Kunz, Michiel F. H. Seuren 

November 1997 Proceedings of the 1997 conference of the Centre for Advanced Studies 
on Collaborative research 

Full text available: *g^ pdf(4.21 MB) Additional Information: full citation , abstract , references , index terms 

Understanding distributed applications is a tedious and difficult task. Visualizations based on 
process-time diagrams are often used to obtain a better understanding of the execution of 
the application. The visualization tool we use is Poet, an event tracer developed at the 
University of Waterloo. However, these diagrams are often very complex and do not provide 
the user with the desired overview of the application. In our experience, such tools display 
repeated occurrences of non-trivial commun ... 
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Sanjeev Arora, Satish Rao, Umesh Vazirani 
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We give a 0(Vlog n)-approximation algorithm for sparsest cut, balanced separator, and 
graph conductance problems. This improves the 0(log n)-approximation of Leighton and 
Rao (1988). We use a well-known semidefinite relaxation with triangle inequality 
constraints. Central to our analysis is a geometric theorem about projections of point sets in 
R d , whose proof makes essential use of a phenomenon called measure concentration. We 
also describe an interes ... 

4 Simplified kinetic connectivity for rectangles and hypercubes 
John Hershberger, Subhash Suri 

January 2001 Proceedings of the twelfth annual ACM-SIAM symposium on Discrete 
algorithms 

Full text available- "P I pdf(871 19 KB) Actional Information: full citation , abstract , references , citings , index 
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We consider the problem of maintaining connected components in a set of moving objects 
using the kinetic data structure (KDS) framework. We assume that the motion of each 
object can be specified by a low-degree algebraic trajectory; this trajectory, however, can 
be modified in an on-line fashion. While the objects move continuously, their connectivity 
changes at discrete times. A straightforward dynamic graph approach for maintaining 
connectivity of n objects has three shortcomings: th ... 

5 Security in VANET: Efficient attribute authentication with applications to ad hoc H 
networks 

Markus Jakobsson, Susanne Wetzel 

October 2004 Proceedings of the first ACM workshop on Vehicular ad hoc networks 

Full text available: ^ pdf(194.82 KB) Additional Information: full citation , abstract , references , index terms 

We present a family of certification methods with applications to attribute certification, 
which in turn has ample applications to ad hoc networks by way of the use of centrally 
managed recommendation mechanisms. Our construction is based on a Merkle tree 
consisting of subtrees, each of which corresponds to some aspect of an attribute. We study 
how the ordering of these subtrees can impact the cost of representing, maintaining, and 
verifying attribute certificates. We describe the applicability ... 

Keywords: attribute authority, certificate, cryptography, hash graphs, light-weight, 
recommendation, spatial Merkle tree 
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Distributed operating systems have many aspects in common with centralized ones, but 
they also differ in certain ways. This paper is intended as an introduction to distributed 
operating systems, and especially to current university research about them. After a 
discussion of what constitutes a distributed operating system and how it is distinguished 
from a computer network, various key design issues are discussed. Then several examples 
of current research projects are examined in spme detail ... 
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Clustering is the unsupervised classification of patterns (observations, data items, or 
feature vectors) into groups (clusters). The clustering problem has been addressed in many 
contexts and by researchers in many disciplines; this reflects its broad appeal and 
usefulness as one of the steps in exploratory data analysis. However, clustering is a difficult 
problem combinatorially, and differences in assumptions and contexts in different 
communities has made the transfer of useful generic co ... 

Keywords: cluster analysis, clustering applications, exploratory data analysis, incremental 
clustering, similarity indices, unsupervised learning 
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Aditya Akella, Shuchi Chawla, Arvind Kannan, Srinivasan Seshan 

July 2004 ACM SIGCOMM Computer Communication Review, volume 34 issue 3 

Full text available: ^ pdf(671.18 KB) Additional Information: full citation , abstract , references , index terms 

As the Internet grows in size, it becomes crucial to understand how the speeds of links in 
the network must improve in order to sustain the pressure of new end-nodes being added 
each day. Although the speeds of links in the core and at the edges improve roughly 
according to Moore's law, this improvement alone might not be enough. Indeed, the 
structure of the Internet graph and routing in the network might necessitate much faster 
improvements in the speeds of key links in the network. 

I... 

Keywords: congestion, power-law graphs, shortest path routing 
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This paper describes NIST's enhanced RBAC model and our approach to designing and 
implementing RBAC features for networked Web servers. The RBAC model formalized in this 
paper is based on the properties that were first described in Ferraiolo and Kuhn [1992] and 
Ferraiolo et al. [1995], with adjustments resulting from experience gained by prototype 
implementations, market analysis, and observations made by Jansen [1988] and Hoffman 
[1996]. The implementation of RBAC for the Web (RBAC/Web) p ... 

Keywords: RBAC, Web arrows, World Wide Web, access control, authorization 
management, role based access 
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Public key certificates prove validity and authenticity of their ownership and possibly other 
properties. Certificate path discovery is the critical process for public key verification in 
hierarchical public key infrastructure (PKI) diagrams. This process is conventionally done in 
centralized public key management system such as central CA or directory. However, in an 
infrastructure-less environment, such as a mobile ad hoc network, no such central service is 
present due to network dynamics. Tha ... 

Keywords: MANET, certificate path discovery, public key infrastructure, security 
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A vital component of any application or environment is security, and yet this is often one of 
the lower priorities, losing out to performance and functionality issues, if it is considered at 
all. This paper considers a spatial approach to enabling, understanding and managing 
access control that is generally applicable across a range of collaborative environments and 
applications. Access control is governed according to the space within which subjects and 
objects reside, and the ability to t ... 

Keywords: access control, collaborative systems, security 
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Computer-mediated small group research has focused efforts on the medium of 
electronically networked text-based messages. An experiment which instead combines a 
synchronous text-based messaging medium with two-dimensional interactive computer 
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graphics is detailed. Three-person groups participated in a risk-taking choice-dilemma task 
involving a discussion of the dilemma and consensus attainment. The groups' prediscussion 
and postdiscussion opinions were collected. Two conditions, ope where ... 

Keywords: computer-mediated small group, discourse analysis, human factors, interactive 
computer graphics, perceptual and cognitive persistence, small group decision-making, 
social influence 
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Secure and reliable group communication is an active area of research. Its popularity is 
fueled by the growing importance of group-oriented and collaborative applications. The 
central research challenge is secure and efficient group key management. While centralized 
methods are often appropriate for key distribution in large multicast-style groups, many 
collaborative group settings require distributed key agreement techniques. This work 
investigates a novel group key agreement approach which ble ... 

Keywords: communication complexity, cryptographic protocols, group communication, 
group key agreement, security 
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The bulk of proposed pervasive computing devices such as PDAs and cellular telephones 
operate as thin clients within a larger infrastructure. To access services within their local 
environment, these devices participate in a service discovery protocol which involves a 
master directory that registers all services available in the local environment. These 
directories typically are isolated from each other. Devices that move across service 
discovery domains have no access to information outside t ... 
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Norman W. Paton, Oscar Diaz 

March 1999 ACM Computing Surveys (CSUR), volume 31 issue l 

Full text available: W\ pdf(2.68 MB) Additional Information: full citation , abstract, references , citings, index 

terms , review 

Active database systems support mechanisms that enable them to respond automatically to 
events that are taking place either inside or outside the database system itself. 
Considerable effort has been directed towards improving understanding of such systems in 
recent years, and many different proposals have been made and applications suggested. 
This high level of activity has not yielded a single agreed-upon standard approach to the 
integration of active functionality with conventional databa ... 

Keywords: active databases, events, object-oriented databases, relational databases 
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When people have meetings or discussions, frequently they use conversational props: 
physical models, drawings, or other concrete representations of information used to 
enhance the exchange of information. If the participants are geographically separated, it is 
difficult to make effective use of props since each physical prop can only exist in one place. 
Computer applications that allow two or more users to simultaneously view and manipulate 
the same data can be used to augm ... 

Keywords: CSCW, UIMS, constraint maintenance, synchronous groupware 
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Research on constraint-based grammar frameworks has focused on syntax and semantics 
largely to the exclusion of phonology. Likewise, current developments in phonology have 
generally ignored the technical and linguistic innovations available in these frameworks. In 
this paper we suggest some strategies for reuniting phonology and the rest of grammar in 
the context of a uniform constraint formalism. We explain why this is a desirable goal, and 
we present some conservative extensions to current pra ... 
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Heuristics, Experimental Subjects, and Treatment Evaluation in Bigraph Crossing 
Minimization 

Matthias Stallmann, Franc Brglez, Debabrata Ghosh 

January 2001 Journal of Experimental Algorithmics (JEA), Volume 6 

Full text available: ffi pdf(858.74 KB) 



m ps(3.01 MB) 



Additional Information: full citation , abstract , references , index terms 



The bigraph crossing problem, embedding the two node sets of a bipartite graph along two 
parallel lines so that edge crossings are minimized, has applications to circuit layout and 
graph drawing. Experimental results for several previously known and two new heuristics 
suggest continued exploration of the problem, particularly sparse instances. We emphasize 
careful design of experimental subject classes and present novel views of the results. All 
source code, data, and scripts are available on-li ... 

Keywords: crossing number, design of experiments, graph drawing, graph embedding, 
graph equivalence classes, layout 



2 RBAC support in object-oriented role databases H 
Raymond K. Wong 

November 1997 Proceedings of the second ACM workshop on Role-based access control 

Full text available: *fg |pdf(1.45 MB) Additional Information: full citation , references , citings , index terms 



Keywords: database security, object-oriented role database, role-based access control 



3 Certificate-based authorization policy in a PKI environment Q 
Mary R. Thompson, Abdelilah Essiari, Srilekha Mudumbai 

November 2003 ACM Transactions on Information and System Security (TISSEC), volume 

6 Issue 4 

Full text available: pdf(233 63 KB) Additional Information: full citation , abstract , references , citings, index 

: terms 

The major emphasis of public key infrastructure has been to provide a cryptographically 
secure means of authenticating identities. However, procedures for authorizing the holders 
of these identities to perform specific actions still need additional research and 
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development. While there are a number of proposed standards for authorization structures 
and protocols such as KeyNote, SPKI, and SAML based on X.509 or other key-based 
identities, none have been widely adopted. As part of an effort to us ... 

Keywords: Public key infrastructure, XML, digital certificates 



4 Access control with IBM Tivoli access manager 
Gunter Karjoth 

May 2003 ACM Transactions on Information and System Security (TISSEC), volume 6 

Issue 2 

Full text available W\ pdf(367.07 KB) Additional Information: full citation , abstract, references , cjtiogs, index 
LiJ "^ terms 

Web presence has become a key consideration for the majority of companies and other 
organizations. Besides being an essential information delivery tool, the Web is increasingly 
being regarded as an extension of the organization itself, directly integrated with its 
operating processes. As this transformation takes place, security grows in importance. IBM 
Tivoli Access Manager offers a shared infrastructure for authentication and access 
management, technologies that have begun to emerge in the com ... 

Keywords: Access control, WWW security, Web servers, authorization management 



5 Security in VANET: Efficient attribute authentication with applications to ad hoc 
networks 

Markus Jakobsson, Susanne Wetzel 

October 2004 Proceedings of the first ACM workshop on Vehicular ad hoc networks 

Full text available: ^ pdf(194.82 KB) Additional Information: full citation , abstract , references , index terms 

We present a family of certification methods with applications to attribute certification, 
which in turn has ample applications to ad hoc networks by way of the use of centrally 
managed recommendation mechanisms. Our construction is based on a Merkle tree 
consisting of subtrees, each of which corresponds to some aspect of an attribute. We study 
how the ordering of these subtrees can impact the cost of representing, maintaining, and 
verifying attribute certificates. We describe the applicability ... 

Keywords: attribute authority, certificate, cryptography, hash graphs, light-weight, 
recommendation, spatial Merkle tree 



6 A role-based access control model and reference implementation within a corporate 
intranet 

David F. Ferraiolo, John F. Barkley, D. Richard Kuhn 

February 1999 ACM Transactions on Information and System Security (TISSEC), volume 2 
Issue 1 

Additional Information: full citation , abstract , references , citings , index 



Full text available: p i pdf(252.60 KB) 

L:J "^ terms 

This paper describes NIST's enhanced RBAC model and our approach to designing and 
implementing RBAC features for networked Web servers. The RBAC model formalized in this 
paper is based on the properties that were first described in Ferraiolo and Kuhn [1992] and 
Ferraiolo et al. [1995], with adjustments resulting from experience gained by prototype 
implementations, market analysis, and observations made by Jansen [1988] and Hoffman 
[1996]. The implementation of RBAC for the Web (RBAC/Web) p ... 

Keywords: RBAC, Web arrows, World Wide Web, access control, authorization 
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Improving the granularity of access control for Windows 2000 U 
Michael M. Swift, Anne Hopkins, Peter Brundrett, Cliff Van Dyke, Praerit Garg, Shannon Chan, 
Mario Goertzel, Gregory Jensenworth 

November 2002 ACM Transactions on Information and System Security (TISSEC), volume 

5 Issue 4 

Additional Information: full citation , abstract , references , citings , index 



Full text available: W\ pdf(447.78 KB) 

^-^ terms , review 

This article presents the mechanisms in Windows 2000 that enable fine-grained and 
centrally managed access control for both operating system components and applications. 
These features were added during the transition from Windows NT 4.0 to support the Active 
Directory, a new feature in Windows 2000, and to protect computers connected to the 
Internet. While the access control mechanisms in Windows NT are suitable for file systems 
and applications with simple requirements, they fall short of the ... 

Keywords: Access control lists, Microsoft Windows 2000, Windows NT, active directory 



8 Special issue on computational phonology: Phonological analysis in typed feature 
systems 

Steven Bird, Ewan Klein 

September 1 994 Computational Linguistics, volume 20 issue 3 

Full text available: i3 

ill pdf(2.19 MB) ^ Additional Information: full citation , abstract , references , citings 

Publisher Site 

Research on constraint-based grammar frameworks has focused on syntax and semantics 
largely to the exclusion of phonology. Likewise, current developments in phonology have 
generally ignored the technical and linguistic innovations available in these frameworks. In 
this paper we suggest some strategies for reuniting phonology and the rest of grammar in 
the context of a uniform constraint formalism. We explain why this is a desirable goal, and 
we present some conservative extensions to current pra ... 

9 Protecting information on the Web 

Elisa Bertino, Elena Pagani, Gian Paolo Rossi, Pierangela Samarati 
November 2000 Communications of the ACM 

Full text available: Wi pdf(461.10 KB) Additional Information: full citation , references , citings , index terms 



10 Delegation logic: A logic-based approach to distributed authorization 
Ninghui Li, Benjamin N. Grosof, Joan Feigenbaum 

February 2003 ACM Transactions on Information and System Security (TISSEC), volume 6 

Issue 1 

Full text available' Wi pdf(316 24 KB) Additional Information: full citation , abstract , references , citings , index 

! terms 

We address the problem of authorization in large-scale, open, distributed systems. 
Authorization decisions are needed in electronic commerce, mobile-code execution, remote 
resource sharing, privacy protection, and many other applications. We adopt the trust- 
management approach, in which "authorization" is viewed as a "proof-of-compliance" 
problem: Does a set of credentials prove that a request complies with a policy?We develop 
a logic-based language, called Delegation Logic (DL), t ... 

Keywords: Access control, Delegation Logic, distributed system security, logic programs, 



http://portal.acm.org/resute^ 4/14/05 



Results (page 1): +~subject +~centrally +~root 



Page 4 of 6 



trust management 



11 Distributed operating systems H 
Andrew S. Tanenbaum, Robbert Van Renesse 
December 1985 ACM Computing Surveys (CSUR), Volume 17 issue 4 

Additional Information: full citation , abstract , references , citings , index 



Full text available: pi pdf(5.49 MB) 

L - J "^ terms , review 

Distributed operating systems have many aspects in common with centralized ones, but 
they also differ in certain ways. This paper is intended as an introduction to distributed 
operating systems, and especially to current university research about them. After a 
discussion of what constitutes a distributed operating system and how it is distinguished 
from a computer network, various key design issues are discussed. Then several examples 
of current research projects are examined in some detail ... 

12 Testbed directions and experience: Experience with an evolving overlay network 
testbed 

David G. Andersen, Hari Balakrishnan, M. Frans Kaashoek, Robert Morris 

July 2003 ACM SIGCOMM Computer Communication Review, volume 33 issue 3 

Full text available: *fg| pdfd 15.26 KB) Additional Information: full citation , abstract , references 

The MIT RON testbed consists of 36 Internet-connected nodes at 31 different sities. It has 
been in operation for two years. This paper presents an overview of the testbed, 
summarizes some of the research for which it has proved useful, and presents the lessons 
we learned during its development. The testbed has been useful both for our own research 
and for that of external researchers becuase of its heterogeneous, diverse network 
connections; its homogenous hardware and software platform; its inc ... 

13 Reading text from computer screens 
Carol Bergfeld Mills, Linda J. Weldon 

December 1987 ACM Computing Surveys (CSUR), Volume 19 issue 4 

Full text available- ^pdf(3.33MB) Additional lnformation: fu " citation > references , 
* fc^H^- 1 terms , review 

This paper reviews empirical studies concerning the readability of text from computer 
screens. The review focuses on the form and physical attributes of complex, realistic 
displays of text material. Most studies comparing paper and computer screen readability 
show that screens are less readable than paper. There are many factors that could affect 
the readability of computer screens. The factors explored in this review are the features of 
characters, the formatting of the screen, the contras ... 

14 Locating application data across service discovery domains 

Paul Castro, Benjamin Greenstein, Richard Muntz, Parviz Kermani, Chatschik Bisdikian, Maria 
Papadopouli 

July 2001 Proceedings of the 7th annual international conference on Mobile 

computing and networking 

r- .i* , Ul ^ , w , OOMm Additional Information: full citation , abstract, references , citings, index 
Full text available: l p;1 pdf(4.38 MB) ; 

L: - H ^ terms 

The bulk of proposed pervasive computing devices such as PDAs and cellular telephones 
operate as thin clients within a larger infrastructure. To access services within their local 
environment, these devices participate in a service discovery protocol which involves a 
master directory that registers all services available in the local environment. These 
directories typically are isolated from each other. Devices that move across service 
discovery domains have no access to information outside t ... 
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15 Securing context-aware applications using environment roles 

Michael J. Covington, Wende Long, Srividhya Srinivasan, Anind K. Dev, Mustaque Ahamad, 
Gregory D. Abowd 

May 2001 Proceedings of the sixth ACM symposium on Access control models and 
technologies 

Full text available: f Bpdfri31.07 KB) Additiona! Information: full citation , abstract, references , citings, index 

terms 

In the future, a largely invisible and ubiquitous computing infrastructure will assist people 
with a variety of activities in the home and at work. The applications that will be deployed 
in such systems will create and manipulate private information and will provide access to a 
variety of other resources. Securing such applications is challenging for a number of 
reasons. Unlike traditional systems where access control has been explored, access 
decisions may depend on the context in which re ... 

Keywords: context aware computing, role-based access control 



16 Fast detection of communication patterns in distributed executions | 
Thomas Kunz, Michiel F. H. Seuren 

November 1997 Proceedings of the 1997 conference of the Centre for Advanced Studies 
on Collaborative research 

Full text available: ^pdf(4.21 MB) Additional Information: full citation , abstract , references , index terms 

Understanding distributed applications is a tedious and difficult task. Visualizations based on 
process-time diagrams are often used to obtain a better understanding of the execution of 
the application. The visualization tool we use is Poet, an event tracer developed at the 
University of Waterloo. However, these diagrams are often very complex and do not provide 
the user with the desired overview of the application. In our experience, such tools display 
repeated occurrences of non-trivial commun ... 

17 Authentication: An approach to certificate path discovery in mobile Ad Hoc networks 
He Huang, Shyhtsun Felix Wu 

October 2003 Proceedings of the 1st ACM workshop on Security of ad hoc and sensor 
networks 

r- * -i ui a«*ak no i^DN Additional Information: full citation , abstract , references , citings , index 
Full text available: f% | pdf(146.93 KB) terms 

Public key certificates prove validity and authenticity of their ownership and possibly other 
properties. Certificate path discovery is the critical process for public key verification in 
hierarchical public key infrastructure (PKI) diagrams. This process is conventionally done in 
centralized public key management system such as central CA or directory. However, in an 
infrastructure-less environment, such as a mobile ad hoc network, no such central service is 
present due to network dynamics. Tha ... 

Keywords: MANET, certificate path discovery, public key infrastructure, security 



18 Tree-based group key agreement 
Yongdae Kim, Adrian Perrig, Gene Tsudik 

February 2004 ACM Transactions on Information and System Security (TISSEC), volume 7 

Issue 1 

Full text available: f ) pdf(573.70 KB) Additional ,nformation: ^ ation - ^SSSSA references, citings, index 

Secure and reliable group communication is an active area of research. Its popularity is 
fueled by the growing importance of group-oriented and collaborative applications. The 
central research challenge is secure and efficient group key management. While centralized 



http://portal.acm.org/resultsxfm?coll=ACM&dl=ACM&CFro=4202413 4/14/05 



Results (page 1): +~subject +~centrally +~root 



Page 6 of 6 



methods are often appropriate for key distribution in large multicast-style groups, many 
collaborative group settings require distributed key agreement techniques. This work 
investigates a novel group key agreement approach which ble ... 

Keywords: communication complexity, cryptographic protocols, group communication, 
group key agreement, security 



19 Fault tolerance under UNIX H 
Anita Borg, Wolfgang Blau, Wolfgang Graetsch, Ferdinand Herrmann, Wolfgang Oberle 

January 1989 ACM Transactions on Computer Systems (TOCS), volume 7 issue l 

Full text available- fflpdff1.97 MB) Additional Information: full citation , abstract, references , citinas. index 
^ terms , review 

The initial design for a distributed, fault-tolerant version of UNIX based on three-way 
atomic message transmission was presented in an earlier paper [3]. The implementation 
effort then moved from Auragen Systemsl to Nixdorf Computer where it was completed. 
This paper describes the working system, now known as the TARGON/32. The original 
design left open questions in at least two areas: fault tolerance for server processes and 
recovery after a crash were brie ... 

20 Development of the domain name system H 
P. Mockapetris, K. J. Dunlap 

August 1988 ACM SIGCOMM Computer Communication Review , Symposium 

proceedings on Communications architectures and protocols, volume is issue 

4 

Additional Information: full citation , abstract , references , citings , index 



Full text available: *m pdf(1.24 MB) 

terms 

The Domain Name System (DNS) provides name service for the DARPA Internet. It is one 
of the largest name services in operation today, serves a highly diverse community of 
hosts, users, and networks, and uses a unique combination of hierarchies, caching, and 
datagram access. This paper examines the ideas behind the initial design of the DNS in 
1983, discusses the evolution of these ideas into the current implementations and usages, 
notes conspicuous surprises, successes and shortc ... 
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